holm/egroupware
1
1
Fork 0
forked from extern/egroupware
Code Issues Pull Requests Packages Projects Releases Wiki Activity

* Admin/API: remove no longer fully supported method to not "store session-id in cookie", it is the safer default anyway

Browse Source
This commit is contained in:
Ralf Becker 2014-07-18 10:03:18 +00:00
parent d54cdacd30
commit 994d10fcde
3 changed files with 0 additions and 28 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

10
admin/templates/default/config.tpl
View File

@ -125,16 +125,6 @@
<td colspan="2">&nbsp;<b>{lang_security}</b></td> <td colspan="2">&nbsp;<b>{lang_security}</b></td>
</tr> </tr>
<tr class="row_on">
<td>{lang_Use_cookies_to_pass_sessionid}:</td>
<td>
<select name="newsettings[usecookies]">
<option value="True"{selected_usecookies_True}>{lang_Yes} - {lang_more_secure}</option>
<option value=""{selected_usecookies_}>{lang_No}</option>
</select>
</td>
</tr>
<tr class="row_off"> <tr class="row_off">
<td>{lang_Cookie_path_(allows_multiple_eGW_sessions_with_different_directories,_has_problemes_with_SiteMgr!)}:</td> <td>{lang_Cookie_path_(allows_multiple_eGW_sessions_with_different_directories,_has_problemes_with_SiteMgr!)}:</td>
<td> <td>

10
etemplate/inc/class.url_widget.inc.php
View File

@ -164,11 +164,6 @@ class url_widget
if ($value) if ($value)
{ {
$link = (strpos($value,'://') === false) ? 'http://'.$value : $value; $link = (strpos($value,'://') === false) ? 'http://'.$value : $value;
if (!$GLOBALS['egw_info']['server']['usecookies']) // if session-id is in url, use redirect.php to remove it from referrer
{
$link = $GLOBALS['egw_info']['server']['webserver_url'].'/redirect.php?go='.$link;
if ($link[0] == '/') $link = ($_SERVER['HTTPS'] ? 'https://' : 'http://').$_SERVER['HTTP_HOST'].$link;
}
$cell['size'] = ','.$link.',,,_blank'; $cell['size'] = ','.$link.',,,_blank';
} }
if (substr($value,0,7) == 'http://') if (substr($value,0,7) == 'http://')
@ -194,11 +189,6 @@ class url_widget
if ($value) if ($value)
{ {
$link = self::phone2link($value); $link = self::phone2link($value);
if (!$GLOBALS['egw_info']['server']['usecookies'] && substr($link,0,4) == 'http') // if session-id is in url, use redirect.php to remove it from referrer
{
$link = $GLOBALS['egw_info']['server']['webserver_url'].'/redirect.php?go='.$link;
if ($link[0] == '/') $link = ($_SERVER['HTTPS'] ? 'https://' : 'http://').$_SERVER['HTTP_HOST'].$link;
}
$cell['size'] = ','.$link.($GLOBALS['egw_info']['server']['call_popup']=='none' ? '' : // 'none' = no target $cell['size'] = ','.$link.($GLOBALS['egw_info']['server']['call_popup']=='none' ? '' : // 'none' = no target
',,,calling,'.$GLOBALS['egw_info']['server']['call_popup']); ',,,calling,'.$GLOBALS['egw_info']['server']['call_popup']);
} }

8
phpgwapi/js/jsapi/egw_links.js
View File

@ -258,14 +258,6 @@ egw.extend('links', egw.MODULE_GLOBAL, function() {
} }
var vars = {}; var vars = {};
/* not sure we still need to support that
// add session params if not using cookies
if (!$GLOBALS['egw_info']['server']['usecookies'])
{
$vars['sessionid'] = $GLOBALS['egw']->session->sessionid;
$vars['kp3'] = $GLOBALS['egw']->session->kp3;
$vars['domain'] = $GLOBALS['egw']->session->account_domain;
}*/
// check if the url already contains a query and ensure that vars is an array and all strings are in extravars // check if the url already contains a query and ensure that vars is an array and all strings are in extravars
var url_othervars = _url.split('?',2); var url_othervars = _url.split('?',2);